WordPress DFD Reddcoin Tips plugin version 1.1.1 suffers from a cross site scripting vulnerability.
>> CATEGORY: exploit
Siemens SICAM RTUs SM-2556 COM modules (firmware variants ENOS00, ERAC00, ETA2, ETLS00, MODi00, and DNPi00) suffer from authentication bypass, code execution, and cross site scripting vulnerabilities.
Dup Scout Enterprise version 10.0.18 ‘Login’ buffer overflow exploit.
Allworx Server Manager versions 6x, 6×12, and 48x suffer from multiple cross site scripting vulnerabilities.
Ulterius Server version prior to 1.9.5.0 suffer from a directory traversal vulnerability.
PSFTPd Windows FTP Server version 10.0.4 Build 729 suffers from use-after-free, log injection, and various other vulnerabilities.
SingTel / Aztech DSL8900GR(AC) router suffers from an authentication bypass vulnerability.
Symantec Endpoint Protection version 12.1.6 suffers from a tamper protection bypass vulnerability.
Web Viewer version 1.0.0.193 on Samsung SRN-1670D suffers from an unrestricted file upload vulnerability.
IKARUS AntiVirus version 2.16.7 suffers from an ntguard_x64 privilege escalation vulnerability.